Update com.github.spotbugs to v4.5.0
This MR contains the following updates:
Package | Change | Age | Adoption | Passing | Confidence |
---|---|---|---|---|---|
com.github.spotbugs:spotbugs (source) |
4.4.2 -> 4.5.0
|
||||
com.github.spotbugs:spotbugs-annotations (source) |
4.4.2 -> 4.5.0
|
Release Notes
spotbugs/spotbugs
v4.5.0
Changed
- Replace "分析" with "解析" in Japanese document (#1573)
- Add a section to document how to integrate find-sec-bugs into spotbugs-maven-plugin (#540)
- Bump gson from 2.8.8 to 2.8.9 (#1784)
- Changes related to dominators analysis in package
edu.umd.cs.findbugs.classfile.engine.bcel
(#1741):-
DominatorsAnalysisFactory
renamed toNonExceptionDominatorsAnalysisFactory
(clarification) -
NonExceptionPostdominatorsAnalysisFactory
renamed toNonExceptionPostDominatorsAnalysisFactory
(spelling) -
NonImplicitExceptionDominatorsAnalysis
introduced (API consistency)
-
Added
- Rule
DCN_NULLPOINTER_EXCEPTION
covers catching NullPointerExceptions in accordance with SEI Cert rule ERR08-J (#1740) - Multiple types of report can be generated in batch. Set multiple commandline options for report configuration like
-html=report/spotbugs.html -xml:withMessages=report/spotbugs.xml
. - New rule
REFL_REFLECTION_INCREASES_ACCESSIBILITY_OF_CLASS
to detect public methods instantiating a class they get in their parameter. This rule based on the SEI CERT rule SEC05-J. Do not use reflection to increase accessibility of classes, methods, or fields. (#SEC05-J) - New detector
FindOverridableMethodCall
to detect invocation of overridable method in constructors (MC_OVERRIDABLE_METHOD_CALL_IN_CONSTRUCTOR
) and clone() method (MC_OVERRIDABLE_METHOD_CALL_IN_CLONE
), according to SEI CERT rules MET05-J. Ensure that constructors do not call overridable methods and MET06-J. Do not invoke overridable methods in clone(). - Translation of online manual to Brazilian Portuguese (PT-BR).
Fixed
- False negative about the rule ES_COMPARING_STRINGS_WITH_EQ (#1764)
- False negative about the rule IM_MULTIPLYING_RESULT_OF_IREM ([#1498])(https://github.com/spotbugs/spotbugs/issues/1498)
Deprecated
-
-output
commandline option is deprecated. Use commandline options for report configuration like-xml=spotbugs.xml
instead.
Configuration
-
If you want to rebase/retry this MR, click this checkbox.
This MR has been generated by Renovate Bot.